[CentOS] Thunderbird 78
The upstream provider decided to remove OpenGPG support in its thunderbird-78 packages, see https://bugzilla.redhat.com/show_bug.cgi?id=1886962 https://bugzilla.redhat.com/show_bug.cgi?id=1886958 https://bugzilla.redhat.com/show_bug.cgi?id=1837512 recommending to either use Mozilla binaries, use Flatpak or switch to Evolution Is there any plan to provide thunderbird-78-full packages in e.g. EPEL, ELRepo or somewhere else (like firefox-esr in Ubuntu) or should we use Mozilla binaries? Thank you in advance! Gerhard Schneider -- Gerhard Schneider Institute of Lightweight Design and e-Mail: g...@ilsb.tuwien.ac.at Structural Biomechanics (E317) Tel.: +43 1 58801 31716 TU Wien / Vienna / Austria Fax: +43 1 58801 31799 A-1060 Wien, Gumpendorfer Straße 7 http://www.ilsb.tuwien.ac.at/~gs/ ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
On 02/12/2020 23:32, Brian Reichert wrote: On Wed, Dec 02, 2020 at 02:17:04PM -0500, Jerry Geis wrote: So ntpdate is no longer present past CentOS 7. What's wrong with the 'ntpdate' RPM? https://centos.pkgs.org/7/centos-x86_64/ntpdate-4.2.6p5-29.el7.centos.2.x86_64.rpm.html What's wrong is that you've quoted the CentOS7 RPM, not the CentOS8 one (which doesn't exist). The OP was asking about ntpdate "past CentOS 7". Thanks, Jerry ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos -- J Martin Rushton MBCS ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] firewall-cmd - bug or bad design
In my firewall I use an ipset as a geographical blacklist. A single addresses can be entered into the blacklist using CIDR notation or not, i.e. 111.222.111.222/32 OR 111.222.111.222 while a block of IP addresses can be entered using CIDR notation: 111.222.111.0/24 Both the ipset and firewall-cmd commands have ways to ask if an address has already been entered into the blacklist. The basic syntax is ipset test firewall-cmd --ipset= --query-entry= With ipset I can test a single address using CIDR or not regardless of how it was entered. If the entry was a block of addresses, any address within the block is reported as "in the ipset". firewall-cmd responds differently. If I entered "111.222.111.222/32" (i.e. using CIDR) into the list, firewall-cmd reports the address as "NOT entered" if I query the simple form "111.222.111.222" even though they are the same single address. Conversely, if the original entry was simple, the CIDR form is reported as "NOT entered". With block entries like 111.222.111.0/24, any address within the block is reported as "NOT entered"! Only the actual string entered, 111.222.111.0/24, is considered "entered". I use these types of queries to decided whether an ip address is already being blocked. Clearly relying the firewall-cmd query would lead to unnecessary entries. What do you think, Should I consider this simply a poor design decision or a reportable "bug"? -- Jon H. LaBadie j...@labadie.us ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
On Wed, Dec 02, 2020 at 02:17:04PM -0500, Jerry Geis wrote: > So ntpdate is no longer present past CentOS 7. What's wrong with the 'ntpdate' RPM? https://centos.pkgs.org/7/centos-x86_64/ntpdate-4.2.6p5-29.el7.centos.2.x86_64.rpm.html > Thanks, > > Jerry > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos -- Brian Reichert BSD admin/developer at large ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
and I'm doing much the same: a Raspberry Pi running Raspbian, acts as my nameserver (instead of my ISP) and NTP server. all the systems in-house sync time from it. On Wed, Dec 2, 2020 at 3:22 PM Bill Gee wrote: > What IS in your chrony.conf file? > > "pool.ntp.org" is not a single server. It is a collection of several > dozen. When you specify a pool of servers for chrony, it will pick 4 > mostly at random and use those. The four servers it chooses will change > over time. > > If you want to use exactly one specific server, then take the pool out of > chrony.conf and add your specific server. I do not see a way for chronyc > to remove servers, so it is a matter of editing the file directly and then > restarting chronyd. > > In my case, only my internal master server goes against a pool. All other > internal systems use the internal master as their only source. Sometimes > when I do "chronyc sources" on them, I see the server listed twice. After > investigation I found that one is for IPv4 and the other for IPv6. > > -- > Bill Gee > > > > On Wednesday, December 2, 2020 2:00:56 PM CST Jerry Geis wrote: > > Thanks everyone for the comments. So trying to use the new "chronyc/d" > > > > So trying a couple things with chronyc > > > > chronyc sources > > 210 Number of sources = 5 > > MS Name/IP address Stratum Poll Reach LastRx Last sample > > > === > > ^* time.cloudflare.com 3 10 377 220 -481us[ -503us] +/- > > 17ms > > ^- zeit.arpnetworks.com 2 9 377 452 -1083us[-1104us] +/- > > 100ms > > ^- lofn.fancube.com 2 10 377 851 -1833us[-1854us] +/- > > 64ms > > ^- ntp3.junkemailfilter.com 2 9 377 227 -937us[ -959us] +/- > > 76ms > > ^- b.st1.ntp.br 1 6 37756 -2300us[-2300us] +/- > > 79ms > > > > NONE of the above are listed in /etc/chrony.conf > > > > Then I tried "chronyc add server pool.ntp.porg" and ran "chronyc sources" > > again and my server was not added ? > > > > I am trying to use the command line chronyc - to "add" the server I want > - > > also wish there was an EASY way to clear the server list. Have not seen > > that though. > > > > What I need is a way to add the server i want - list the server to make > > sure my server is in the list - and remove servers I dont want (or all). > > > > Thanks, > > > > Jerry > > ___ > > CentOS mailing list > > CentOS@centos.org > > https://lists.centos.org/mailman/listinfo/centos > > > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [CentOS-devel] Reminder: CentOS 6 EOL on 30 November 2020
> -Original Message- > From: CentOS-devel On Behalf Of Johnny > Hughes > Sent: Monday, November 9, 2020 8:25 AM > To: CentOS ML ; CentOS-Devel > Subject: [CentOS-devel] Reminder: CentOS 6 EOL on 30 November 2020 > > All, > > This is a friendly reminder. > > CentOS 6.10 will EOL at the end of November 2020. > > During the first week in December 2020, the 6.10 directory will move to > vault.centos.org How difficult is it to keep (a copy) the latest update online for a while? We have an internal mirror but I am sure there are others out there that might use it for a few more months. Kill the ISO and any other space taking non-updates. > > Packages will still be available at: > > http://vault.centos.org/centos/6.10/ > > However, once moved, there will be no more updates pushed to > vault.centos.org. Therefore, security issues will no longer be fixed, > etc. > > You should take the rest of the month to either move to a newer versoin > of CentOS Linux ... or to procure Extended el6 support from Red Hat (EUS > RHEL 6). > > Thanks, > Johnny Hughes ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
What IS in your chrony.conf file? "pool.ntp.org" is not a single server. It is a collection of several dozen. When you specify a pool of servers for chrony, it will pick 4 mostly at random and use those. The four servers it chooses will change over time. If you want to use exactly one specific server, then take the pool out of chrony.conf and add your specific server. I do not see a way for chronyc to remove servers, so it is a matter of editing the file directly and then restarting chronyd. In my case, only my internal master server goes against a pool. All other internal systems use the internal master as their only source. Sometimes when I do "chronyc sources" on them, I see the server listed twice. After investigation I found that one is for IPv4 and the other for IPv6. -- Bill Gee On Wednesday, December 2, 2020 2:00:56 PM CST Jerry Geis wrote: > Thanks everyone for the comments. So trying to use the new "chronyc/d" > > So trying a couple things with chronyc > > chronyc sources > 210 Number of sources = 5 > MS Name/IP address Stratum Poll Reach LastRx Last sample > === > ^* time.cloudflare.com 3 10 377 220 -481us[ -503us] +/- > 17ms > ^- zeit.arpnetworks.com 2 9 377 452 -1083us[-1104us] +/- > 100ms > ^- lofn.fancube.com 2 10 377 851 -1833us[-1854us] +/- > 64ms > ^- ntp3.junkemailfilter.com 2 9 377 227 -937us[ -959us] +/- > 76ms > ^- b.st1.ntp.br 1 6 37756 -2300us[-2300us] +/- > 79ms > > NONE of the above are listed in /etc/chrony.conf > > Then I tried "chronyc add server pool.ntp.porg" and ran "chronyc sources" > again and my server was not added ? > > I am trying to use the command line chronyc - to "add" the server I want - > also wish there was an EASY way to clear the server list. Have not seen > that though. > > What I need is a way to add the server i want - list the server to make > sure my server is in the list - and remove servers I dont want (or all). > > Thanks, > > Jerry > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
Thanks everyone for the comments. So trying to use the new "chronyc/d" So trying a couple things with chronyc chronyc sources 210 Number of sources = 5 MS Name/IP address Stratum Poll Reach LastRx Last sample === ^* time.cloudflare.com 3 10 377 220 -481us[ -503us] +/- 17ms ^- zeit.arpnetworks.com 2 9 377 452 -1083us[-1104us] +/- 100ms ^- lofn.fancube.com 2 10 377 851 -1833us[-1854us] +/- 64ms ^- ntp3.junkemailfilter.com 2 9 377 227 -937us[ -959us] +/- 76ms ^- b.st1.ntp.br 1 6 37756 -2300us[-2300us] +/- 79ms NONE of the above are listed in /etc/chrony.conf Then I tried "chronyc add server pool.ntp.porg" and ran "chronyc sources" again and my server was not added ? I am trying to use the command line chronyc - to "add" the server I want - also wish there was an EASY way to clear the server list. Have not seen that though. What I need is a way to add the server i want - list the server to make sure my server is in the list - and remove servers I dont want (or all). Thanks, Jerry ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] [rdo][centos8][repos] CentOS8 RDO-USSURI repo missing openvswitch2.13
Hi all, I have an issue, in CentOS8 repos for RDO. It is refering to openvswitch2.13 name, but in the repos I can see openvswitch packages with version in version field, looks like in dependency field it is missing dash (-) or smth... here is a paste of repos and error message [0]. Or any other way how this could be fixed? thanks. and packages I can see [1] here. [0] http://paste.openstack.org/show/xEalilL1rRJSDTzNCGt1/ [1] http://paste.openstack.org/show/VLWrNFpRLatwq5qXP2kD/ -- Ruslanas Gžibovskis +370 6030 7030 ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
On Wed, Dec 2, 2020 at 1:26 PM John Pierce wrote: > the problem with that sort of time sync is that if your systems clock is > running fast, then those once a day time syncs cause the clock to be set > BACK a few seconds or whatever (in bad cases a few minutes). > Modern chrony that Bill Gee pointed out does a skew unless you manually tell it to step the time into sync. https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/system_administrators_guide/ch-configuring_ntp_using_the_chrony_suite#sect-Manually_Adjusting-the-System_Clock ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
On Wed, Dec 2, 2020 at 11:17 AM Jerry Geis wrote: > ... > ntpdate was "nice" in that I could just run once a day as "ntpdate name" the problem with that sort of time sync is that if your systems clock is running fast, then those once a day time syncs cause the clock to be set BACK a few seconds or whatever (in bad cases a few minutes). I have always run ONE primary ntp server on my internal network, given it firewall access to the ntp ports, then had all my other systems ntp sync off that one server.This only requires a single port OUTBOUND connection from that one server. I generally avoid the 'pool' servers, and instead manually chose a set of regional stratum I or II NTP servers that are listed as being offered to the public. -- -john r pierce recycling used bits in santa cruz ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ntpdate past CentOS 7
There is a command-line option for chronyd which runs once, sets the time and exits. # chronyd -q I run chrony as a daemon on all my systems. One system is a server to everything else that is internal. The server is the only one that goes outside. It works well. The initial setup is basically a one-time deal. After that it can be pretty much ignored. -- Bill Gee On Wednesday, December 2, 2020 1:17:04 PM CST Jerry Geis wrote: > So ntpdate is no longer present past CentOS 7. > > Many times people want "internal" NTP servers - not opening firewalls to > allow external pool.ntp.org kind of stuff. > > ntpdate was "nice" in that I could just run once a day as "ntpdate name" > and all good. Is there a similar client for CentOS 8 ? I saw chrony - but > does not seem to be a command line command and I would also have to edit a > file - Both are not desirable. > > Just looking for a simple - flexible command like I have been using > "ntpdate name" for CentOS 8. > > Thanks, > > Jerry > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos > ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] ntpdate past CentOS 7
So ntpdate is no longer present past CentOS 7. Many times people want "internal" NTP servers - not opening firewalls to allow external pool.ntp.org kind of stuff. ntpdate was "nice" in that I could just run once a day as "ntpdate name" and all good. Is there a similar client for CentOS 8 ? I saw chrony - but does not seem to be a command line command and I would also have to edit a file - Both are not desirable. Just looking for a simple - flexible command like I have been using "ntpdate name" for CentOS 8. Thanks, Jerry ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Firefox, C-7, and... reboot?
Last night, for the second or third time since I upgraded from C6 to c7 this summer, I did something on firefox - I think it was reload a page, and my system rebooted. Yes, I have a ton of tabs open. I see nothing suspicious in /var/log/messages, or in /var/log/dmesg.old. I saw a mention of boltd? I think, but nothing more. Has anyone else had this problem? mark ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Problem upgrading from 8.0 to 8.1
On 02.12.20 12:55, Michael Schwartzkopff wrote: > Hi, > > > I want to upgrade from 8.0 to 8.1 but > > yum update > > does not work. Still 8.0 > > > Probably the cause is that I compiled DRBD myself because it was not > available for 8.0 when I set up the machine. Now yum update says: > > > Error: > Problem 1: cannot install the best update candidate for package > drbd-pacemaker-9.11.0-1.el8.x86_64 > - nothing provides pacemaker needed by drbd-pacemaker-9.13.1-1.el8.x86_64 > Problem 2: cannot install both drbd-utils-9.13.1-1.el8.x86_64 and > drbd-utils-9.11.0-1.el8.x86_64 > - package drbd-heartbeat-9.11.0-1.el8.x86_64 requires drbd-utils = > 9.11.0-1.el8, but none of the providers can be installed > - cannot install the best update candidate for package > drbd-utils-9.11.0-1.el8.x86_64 > - problem with installed package drbd-heartbeat-9.11.0-1.el8.x86_64 > Problem 3: cannot install both drbd-utils-9.13.1-1.el8.x86_64 and > drbd-utils-9.11.0-1.el8.x86_64 > - package drbd-pacemaker-9.11.0-1.el8.x86_64 requires drbd-utils = > 9.11.0-1.el8, but none of the providers can be installed > - package drbd-9.13.1-1.el8.x86_64 requires drbd-utils = 9.13.1, but > none of the providers can be installed > - problem with installed package drbd-pacemaker-9.11.0-1.el8.x86_64 > - cannot install the best update candidate for package > drbd-9.11.0-1.el8.x86_64 > - nothing provides pacemaker needed by drbd-pacemaker-9.13.1-1.el8.x86_64 > (try to add '--allowerasing' to command line to replace conflicting > packages or '--skip-broken' to skip uninstallable packages or '--nobest' > to use not only best candidate packages) > > > with --nobest yum update runs through without doing anything and I sill > have kernel 4.18.0-80.11.2.el8_0.x86_64 > > > Any ideas how to update my server? > > > > Mit freundlichen Grüßen, > > > ___ > CentOS mailing list > CentOS@centos.org > https://lists.centos.org/mailman/listinfo/centos OK, I found the problem. I had exclude=kernel* centos-release* in yum.conf to protect my drbd kernel module. Mit freundlichen Grüßen, -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] Problem upgrading from 8.0 to 8.1
Hi, I want to upgrade from 8.0 to 8.1 but yum update does not work. Still 8.0 Probably the cause is that I compiled DRBD myself because it was not available for 8.0 when I set up the machine. Now yum update says: Error: Problem 1: cannot install the best update candidate for package drbd-pacemaker-9.11.0-1.el8.x86_64 - nothing provides pacemaker needed by drbd-pacemaker-9.13.1-1.el8.x86_64 Problem 2: cannot install both drbd-utils-9.13.1-1.el8.x86_64 and drbd-utils-9.11.0-1.el8.x86_64 - package drbd-heartbeat-9.11.0-1.el8.x86_64 requires drbd-utils = 9.11.0-1.el8, but none of the providers can be installed - cannot install the best update candidate for package drbd-utils-9.11.0-1.el8.x86_64 - problem with installed package drbd-heartbeat-9.11.0-1.el8.x86_64 Problem 3: cannot install both drbd-utils-9.13.1-1.el8.x86_64 and drbd-utils-9.11.0-1.el8.x86_64 - package drbd-pacemaker-9.11.0-1.el8.x86_64 requires drbd-utils = 9.11.0-1.el8, but none of the providers can be installed - package drbd-9.13.1-1.el8.x86_64 requires drbd-utils = 9.13.1, but none of the providers can be installed - problem with installed package drbd-pacemaker-9.11.0-1.el8.x86_64 - cannot install the best update candidate for package drbd-9.11.0-1.el8.x86_64 - nothing provides pacemaker needed by drbd-pacemaker-9.13.1-1.el8.x86_64 (try to add '--allowerasing' to command line to replace conflicting packages or '--skip-broken' to skip uninstallable packages or '--nobest' to use not only best candidate packages) with --nobest yum update runs through without doing anything and I sill have kernel 4.18.0-80.11.2.el8_0.x86_64 Any ideas how to update my server? Mit freundlichen Grüßen, -- [*] sys4 AG https://sys4.de, +49 (89) 30 90 46 64 Schleißheimer Straße 26/MG,80333 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief Aufsichtsratsvorsitzender: Florian Kirstein signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 7, as a 6in4 server
On 12/2/20 10:02 AM, Walter H. wrote: On 02.12.2020 09:16, Roberto Ragusa wrote: but you have 3 different networks, yes, my own network at home, the network of the tunnel, and public the network where the VPS is part of; shouldn't you just configure routing instead of using proxy_ndp? without these the following is not possible, -> Destination host unreachable ping6 homeprefix::1 ping6 tunnelprefix::2 ping6 tunnelprefix::1 (the sit1 device of the server itself) If I understand correctly your hoster has assigned you 3 subnetworks but it is not routing them to your VPS, it just expects your VPS to use them on its interface. In this case, yes, you need proxy_ndp, and if there is a way to avoid enumerating each IP I would be interested to know. If instead tunnelprefix and homeprefix were just externally routed to serverprefix::1 everything would be simpler, but that is not under your control, I assume. Regards. -- Roberto Ragusamail at robertoragusa.it ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Reminder: CentOS 6 EOL on 30 November 2020
On 30/11/2020 13:39, Fabian Arrotin wrote: > On 30/11/2020 11:18, Manuel Wolfshant wrote: >> On 11/30/20 10:25 AM, Fabian Arrotin wrote: >>> On 09/11/2020 14:24, Johnny Hughes wrote: All, This is a friendly reminder. CentOS 6.10 will EOL at the end of November 2020. During the first week in December 2020, the 6.10 directory will move to vault.centos.org Packages will still be available at: http://vault.centos.org/centos/6.10/ However, once moved, there will be no more updates pushed to vault.centos.org. Therefore, security issues will no longer be fixed, etc. You should take the rest of the month to either move to a newer versoin of CentOS Linux ... or to procure Extended el6 support from Red Hat (EUS RHEL 6). Thanks, Johnny Hughes >>> As announced multiple times (on list[s], twitter, glog.centos.org and >>> even https://c6eol.centos.org) , CentOs 6 is now EOL and so is being >>> retired from mirror network. >>> It's currently being moved to (capped and limited bandwidth) >>> vault.centos.org and will be removed from mirror.centos.org (and so >>> external mirrors in the next hours/days). >>> mirrorlist.centos.org will also (like we do for all >>> outdated/unmaintained and unsecured releases) start answering "invalid >>> release" >>> >>> Kind Regards, >> >> Just to let you all know that starting from today, mirrorlist.centos.org nodes answer "Invalid release/repo/arch combination" and also that content was removed from mirrors. Johnny pushed the last updates yesterday, that went out to external mirrors . These mirrors will also delete all that content so if your *really* need to find such content, https://vault.centos.org is the only way to to go, but due to reduced bandwidth, capacity, we encourage you to use one of the external mirrors listed on vault.centos.org, with probably more resources/bandwidth that we currently have. Some of these mirrors also continue to offer rsync access. Cheers, and time to have a drink and celebrate 10 years of CentOS 6 : you served us all well ! -- Fabian Arrotin The CentOS Project | https://www.centos.org gpg key: 17F3B7A1 | twitter: @arrfab signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 7, as a 6in4 server
On 02.12.2020 09:16, Roberto Ragusa wrote: On 12/1/20 8:39 PM, Walter H. wrote: I have a VPS at a hoster where I got 3 /64 ipv6 prefixes/subnets, that are routed; one for the VPS itself - let us call this srvprefix one for the tunnel, only ::1 (server side) and ::2 (home side) are used - let us call this tunnelprefix and one for my network at home - let us call this homeprefix now I'm just in test state, a CentOS VM is the other end of the tunnel; (when the server runs well, my CentOS ZBOX will become the other end of the tunnel) at the server the eth0 device has serverprefix::1, the sit1 device has tunnelprefix::1 the routing is set with /etc/sysconfig/network-scripts/route6-sit1 tunnelprefix::2 dev sit1 homeprefix::/64 via tunnelprefix::2 dev sit1 in sysctl.conf these are set net.ipv6.conf.all.forwarding = 1 net.ipv6.conf.all.proxy_ndp = 1 now I have to do these ip -6 neigh add proxy homeprefix::1 dev eth0 ip -6 neigh add proxy homeprefix::### dev eth0 the question, can I do something to avoid these "ip -6 neigh ..."? if yes, what? and how? can the hoster do something? if yes, what? I may be missing something, can you specify this? but you have 3 different networks, yes, my own network at home, the network of the tunnel, and public the network where the VPS is part of; shouldn't you just configure routing instead of using proxy_ndp? without these the following is not possible, -> Destination host unreachable ping6 homeprefix::1 ping6 tunnelprefix::2 ping6 tunnelprefix::1 (the sit1 device of the server itself) Thanks, Walter ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 7, as a 6in4 server
On 12/1/20 8:39 PM, Walter H. wrote: I have a VPS at a hoster where I got 3 /64 ipv6 prefixes/subnets, that are routed; one for the VPS itself - let us call this srvprefix one for the tunnel, only ::1 (server side) and ::2 (home side) are used - let us call this tunnelprefix and one for my network at home - let us call this homeprefix now I'm just in test state, a CentOS VM is the other end of the tunnel; (when the server runs well, my CentOS ZBOX will become the other end of the tunnel) at the server the eth0 device has serverprefix::1, the sit1 device has tunnelprefix::1 the routing is set with /etc/sysconfig/network-scripts/route6-sit1 tunnelprefix::2 dev sit1 homeprefix::/64 via tunnelprefix::2 dev sit1 in sysctl.conf these are set net.ipv6.conf.all.forwarding = 1 net.ipv6.conf.all.proxy_ndp = 1 now I have to do these ip -6 neigh add proxy homeprefix::1 dev eth0 ip -6 neigh add proxy homeprefix::### dev eth0 the question, can I do something to avoid these "ip -6 neigh ..."? if yes, what? and how? can the hoster do something? if yes, what? I may be missing something, but you have 3 different networks, shouldn't you just configure routing instead of using proxy_ndp? Regards. -- Roberto Ragusamail at robertoragusa.it ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos